A security hole has been found in Snapchat, the mobile messaging app that allows users to self-destruct pictures and video messages.
Normally with Snapchat, a time limit can be set (up to 10 seconds) to cause a message to disappear after being read. The app became popular for mobile users who like to send NSFW pictures and videos.
However, recipients can now work around the time limitations by simply not opening received messages. Files are stored locally, so they can be accessed by plugging your iPhone into the computer. The user can then use file browsing software like iFunBox to store "tmp" files located in the Snapchat folder permanently.
The security hole was also discovered to work on Facebook's recently-released Poke app, which features the self-destruct messaging option as well. Using similar file browsing software, Poke files stored in library/caches/fbstore/mediacard can be transferred to the desktop for your viewing leisure.
The flaws were first discovered by Buzzfeed, who reached out to both parties about the security loophole. Facebook said:
None
Snapchat founder Evan Spiegel, however, has a totally different outlook regarding the lopphole:
None
[via Tech Radar]
